[Owasp-leaders] Facebook

Jim Manico jim.manico at owasp.org
Wed Dec 30 17:00:09 EST 2009


Hello Leaders,

I recently noticed that the OWASP Top Ten was being referenced on
Facebook's developer platform wiki at
http://wiki.developers.facebook.com/index.php/Platform_Security - pretty
cool.

This triggered a conversation with Pete Bratach and Ryan  McGeehan from
the Facebook security team about a deeper relationship between Facebook
and OWASP. They also brought their partners, iSec (folks who know the
Facebook platform very well) into the conversation.

Facebook would like OWASP to host and develop a series of wiki pages on
the topic on helping developers write secure Facebook applications. One
this is rolling, Facebook would prominently link to those pages from the
Facebook developer portal. The traffic and awareness potential is
significant.

Facebook also seems to have a progressive security research policy in
place (modeled after PayPals) at
http://www.facebook.com/security#/security?v=app_6009294086

What do you think leaders?

- Jim Manico
OWASP ESAPI Project Manager
http://www.owasp.org/index.php/Category:OWASP_Enterprise_Security_API

OWASP Podcast Host/Producer
http://www.owasp.org/index.php/OWASP_Podcast



More information about the OWASP-Leaders mailing list